Anyone had success/failures with changing IdP IP addresses?
Brian Koehmstedt
bkoehmstedt at ucmerced.edu
Thu Jul 24 19:57:59 EDT 2014
On 7/24/2014 3:59 PM, Cantor, Scott wrote:
> FWIW, depending on the attributes involved, the usual way to deal with the
> Red Hat bug is to configure the new IdP servers to push attributes, and
> then contact the SPs out of band to get them to restart the shibds to
> flush the DNS caches, and then remove the push setting if desired.
>
> Giant hassle, but I guess you can send the bill to Red Hat...
>
> -- Scott
>
That's Scott, that's helpful. For a SP to be affected by this curl bug,
I would normally see that SP making queries to the AttributeService URL
configured in my IdP metadata, correct?
Conversely, if I don't see the SP making these queries to
AttributeService, then I can assume attributes are being pushed anyway
and it's not the curl bug, correct?
More information about the users
mailing list